CVE-2019-13532

CVE-2019-13532

Vendor N/A
Product CODESYS V3 web server
Weakness CWE-22 · Path traversal
Published September 13, 2019
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

CODESYS V3 web server, all versions prior to 3.5.14.10, allows an attacker to send specially crafted http or https requests which may allow access to files outside the restricted working directory of the controller.

Key dates

02Disclosure timeline

September 13, 2019 CVE published
August 4, 2024 Record updated